[Bug 1270784] Re: aa-status --enabled failed in LXC container with Permission denied: '/sys/kernel/security/apparmor/profiles'

[Expired for lxc (Ubuntu) because there has been no activity for 60 days.] ** Changed in: lxc (Ubuntu) Status: Incomplete => Expired -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/

[Bug 1270784] Re: aa-status --enabled failed in LXC container with Permission denied: '/sys/kernel/security/apparmor/profiles'

It actually seems like a bug in aa-status. Note that /sys/kernel/security/apparmor/profiles is not readable by non- root users on the host. Yet non-root users on the host do not see a python traceback when they run 'aa-status --enable'. This also suggests that a container should not provide read

[Bug 1270784] Re: aa-status --enabled failed in LXC container with Permission denied: '/sys/kernel/security/apparmor/profiles'

Assigning to lxc since it is what is providing the policy. ** Package changed: apparmor (Ubuntu) => lxc (Ubuntu) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1270784 Title: aa-status

[Bug 1270784] Re: aa-status --enabled failed in LXC container with Permission denied: '/sys/kernel/security/apparmor/profiles'

Is this still an issue for you on up to date 14.04 or 14.10? ** Changed in: lxc (Ubuntu) Status: New => Incomplete -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1270784 Title: